Overview

overview

10

Static

static

10

4b167fd691...be.elf

ubuntu-18.04-amd64

4b167fd691...be.elf

debian-9-armhf

4b167fd691...be.elf

debian-9-mips

4b167fd691...be.elf

debian-9-mipsel

Sharing

Copy URL Twitter E-mail

General

  • Target

    f1fbc276cf4312b48213737d43384074.bin

  • Size

    45KB

  • MD5

    36e200f816998924aaef9cdd8a40f609

  • SHA1

    2addd945c47d33d71f7339976e8a5bca65081922

  • SHA256

    0318340fe2c0d482e93b7a0d83bcf186d6d62d3fbf7f40306120e5e5064eceb3

  • SHA512

    cb27a8acb76eafd9eaec49805f2fa7787d100cb2716b39a3f883ee7eb64e525eaea8c13ed0233372978c1e64ad9e1342b041acbcb57751a13a55d6f35507ab2a

  • SSDEEP

    768:lArQ9MEIkJknnXAeygXJiJOlUOeeBK5oQjdghTjtBg2nWYbC9jmuZ5EBT:GM+0JkXAeTZi0lUV5KjDdWR96u7mT

Score
10/10
gafgyt

Malware Config

Extracted

Family

gafgyt

C2

176.97.114.45:666

Signatures

  • Detected Gafgyt variant 1 IoCs
  • Gafgyt family
    gafgyt

Files

  • f1fbc276cf4312b48213737d43384074.bin
    .zip

    Password: infected

  • 4b167fd6911cac6968610cdbfb46168b5b570e4e9f4f379be602d9a77be1cabe.elf
    .elf linux ppc